SIMI: Secure Identity Management Infrastructure for the CSU A. Michael Berman, Cal Poly Pomona.

Slides:



Advertisements
Similar presentations
1 David Kathan, Ph.D Federal Energy Regulatory Commission 2010 National Town Meeting on Demand Response and Smart Grid June 23, 2010 National Action Plan.
Advertisements

Defining the Security Domain Marilu Goodyear John H. Louis University of Kansas.
Information Resources and Communications University of California, Office of the President Information Technology Services The California State University.
Technical Review Group (TRG)Agenda 27/04/06 TRG Remit Membership Operation ICT Strategy ICT Roadmap.
An Identity Management Vision for California Education A. Michael Berman, Cal Poly Pomona Mark Crase, CSU Office of the Chancellor Copyright A. Michael.
David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.
Promoting the Enterprise IPMA 2005 Executive Seminar September 21, 2005 Gary Robinson, Director Department of Information Services Scott Came, Director.
Identity Management: Some Basics Mark Crase, California State University Office of the Chancellor CENIC - March 9, 2011.
Content Management System (CMS) Implementation at SFU Feb 10, 2011 Frances Atkinson Director, Institutional, Collaborative & Academic Technologies IT Services.
Enterprise Web Portal Portal Evaluation Plan. Enterprise Web Portal tool for managing increased growth & complexity. a means to increase staff efficiency.
May 22, 2002 Joint Operations Group Discussion Overview Describe the UC Davis Security Architecture Describe Authentication Efforts at UC Davis Current.
03 December 2003 Digital Certificate Operation in a Complex Environment Consultation/Stakeholders Meeting 3 December 2003.
June 1, 2001 Enterprise Directory Service at College Park David Henry Office of Information Technology University of Maryland College Park
The Identity Management Collaborative: A SIMI Pilot Project Cal Poly San Luis Obispo California State University Stanislaus The Office of the Chancellor.
Middleware & Enterprise Services at College Park David Henry Office of Information Technology November 16, 2001.
July 12, 2005 CSU SIMI Workshop - Melding Policy and Technology to Manage Identity1 Provisioning Services Collaborative CSU, East Bay and CSU, San Bernardino.
Peter Deutsch Director, I&IT Systems July 12, 2005
On Beyond Z Building a Directory Service educause presentation #074 University of Colorado at Boulder Deborah Keyek-Franssen Marin Stanek Paula J. Vaughan.
CSU Chico Web Site A Unified approach to Governance, Management, and Accessibility.
Identity and Access Management IAM. 2 Definition Identity and Access Management provide the following: – Mechanisms for identifying, creating, updating.
Alliance for Strategic Technology (AST) SUNY Business Intelligence Initiative January 8, 2009.
Identity and Access Management IAM A Preview. 2 Goal To design and implement an identity and access management (IAM) middleware infrastructure that –
7/16/ Roadmap to the Future: Product Strategy for UM Enterprise Systems Michigan Administrative Information Services (MAIS) HRMS Unit Liaison Meeting.
Directory Services Project University of Colorado at Boulder.
A Tale of Two Mega-regions and Many Systems: The Californias and Shared Print Projects Print Archive Network Forum ALA Midwinter Philadelphia, PA January.
Middleware Business Case and Stakeholders: The why and who of enterprise. Mark Crase, Ed.D. Sr. Director, Technology Infrastructure Initiatives The California.
Compliance and its Cast of Characters ~ Introductory Compliance Concepts for those with Auxiliary Roles Kimberli E. Bowman NCAA Membership Services.
1 EDUCAUSE Midwest Regional Conference Top Strategies for Working with Stakeholders: Synopses of Recommendations from the Identity Management Summit Mark.
EDUCAUSE PKI Working Group Where Are We and Where are We Going.
Directory Services at UMass  Directory Services Overview  Some common definitions  What can a directory do or not do?  User Needs Assessment  What.
16 September 2015 The Silver Ring: Inter-institutional Middleware Collaboration Michael Berman Mark Crase April 9, 2003 Michael Berman Mark Crase April.
June 2006Gilbane Conference1 Web Governance Social Security Administration Office of Electronic Services June 14 th 2006.
Roles and Responsibilities
Multi-Campus Middleware: Technical and Organizational Dimensions A. Michael Berman, Cal Poly Pomona Mark Crase, CSU Office of the Chancellor Kent McKinney,
IT Governance Purpose: Information technology is a catalyst for productivity, creativity and community that enhances learning opportunities in an environment.
Rutgers University Libraries Reorganization March 3, 2006 Marianne Gaunt University Librarian.
Web Technologies Working Group October 25, Approval Needed Web Standards and Guidelines – Development of an online resource with the objective of.
Top Issues Facing Information Technology at UAB Sheila M. Sanders UAB Vice President Information Technology February 8, 2007.
Michael Ghens Information Systems Specialist Santa Barbara City College.
NSF Middleware Initiative Renee Woodten Frost Assistant Director, Middleware Initiatives Internet2 NSF Middleware Initiative.
Presented by: Presented by: Tim Cameron CommIT Project Manager, Internet 2 CommIT Project Update.
Internet2 Middleware Initiative. Discussion Outline  What is Middleware why is it important why is it hard  What are the major components of middleware.
User Provisioning Project Presented to ITLC September 28, 2010 David Walker, ITAG Co-Chair Information and Educational Technology, UC Davis Mary Doyle,
EdReNe, 2nd Strategic Seminar (Lisbon, June 2008) (c) 2008, Daniel Weiler, Centre of Technology of Education Luxembourg’s Educational Portal Enabling Connected.
E-Text Research Project Results & Recommendations presented to the CSU Advisory Committee for Services to Students with Disabilities November 22, 2002.
FEDERATIONS Clair Goldsmith, Ph.D., Associate Vice Chancellor and CIO September 27,
Erie 1 BOCES / WNYRIC eBOCES applications Visit us at:
Outsourcing Student at USC Institute for Computer Policy and Law Cornell University, August 2008 Asbed Bedrossian Director of Enterprise Applications.
Holly Eggleston, UCSD Shibboleth and Library Resources InCommon Library/Shibboleth Project.
UAB Portal Functional Committee Meeting December 15, 2005.
Graduate Council Kamal Abou Mikhael Thesis Phases and Deadlines.
State of e-Authentication in Higher Education August 20, 2004.
The Direction of Information Security and Privacy in State Government Presented by Colleen Pedroza Chief Information Security Officer California State.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Standard Unique Health Identifier for Health Care Providers April 9, th Annual HIPAA Summit Gail Kocher Highmark.
11 ITLC – Middleware Report May 27, 2010 The work of a subgroup of ITAG.
6 February 2004 Internet2 Priorities 2004 Internet2 Industry Strategy Council Douglas Van Houweling.
University of Washington Collaboration: Identity and Access Management Lori Stevens University of Washington October 2007.
Authorization: Just when you thought middleware was no fun anymore Keith Hazelton, Senior IT Architect, Univ. of Wisconsin-Madison Member, Internet2 Middleware.
2-Oct-0101 October 2001 Directories as Middleware Keith Hazelton, Senior IT Architect University of Wisconsin-Madison Keith Hazelton, Senior IT Architect.
Standards and Vital Statistics: Building an HL-7 Vital Events Message Delton Atkinson, MSPH, MPH, PMP NCHS Consultant Lockheed Martin Information Technology.
Traveling into the Future with the 5010 Implementation Timeline HIPAA COW Spring 2009 Conference Presented by Laurie Burckhardt, WPS EDI Manager.
1 Name of Meeting Location Date - Change in Slide Master Authentication & Authorization Technologies for LSST Data Access Jim Basney
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Shibboleth Project at GSU
California State University CSUconnect Federation
Proposal to Create IAM Working Group
Executive Committee Meeting May 18, 2018
Data, Policy, Stakeholders, and Governance
Presentation transcript:

SIMI: Secure Identity Management Infrastructure for the CSU A. Michael Berman, Cal Poly Pomona

Overview of Presentation What is the SIMI proposal for CSU? How did we get here? What happens next? A vision for the future

What is the SIMI Proposal for the CSU?

What is the SIMI proposal? A coordinated, system-wide effort to develop a Secure Identity Management Infrastructure A technology and policy infrastructure to support the secure, private, and reliable transactions related to the identities of individuals in the CSU system

Potential Technology Dimensions for SIMI Directories – LDAP and others Account provisioning and management Single sign-on (web sign-on) PKI Advanced authorization solutions, e.g. Shibboleth

Potential Policy Dimensions for SIMI Cross-campus policy rationalization Establishment of minimum standards, e.g. for account management Compliance with state & federal regulations related to identity information, e.g. GLB, SB1346

Potential Applications CMS support and enhancement Access to Library resources White pages Secure messaging Access to learning resources, e.g. on- line course cross-registration

Roles and Responsibilities of Campuses and “SIMI Central” Most of the work will take place on the campuses – much is happening now Role of proposed central organization: Coordination Communication Support Leverage Consulting

How Did We Get Here?

Activities of the ITAC Directories Working Group Multi-campus pilot CalStateEduPerson specification Middleware Steering Committee Appointed by David Ernst to develop recommendations Meetings with campus representatives, CMS Staff, CMS Project Directors, COLD representatives Discussions with Internet2, Educause, representatives from other systems, e.g. Maryland

Related Activities Internet2/NSF Middleware Initiative COLD – Pharos project CMS driving LDAP implementations

What Happens Next?

Status of the Proposal Recommendations transmitted to David Ernst in May Discussions currently underway in CO To be presented to the Technical Steering Committee (subcommittee of ExecCouncil) We expect that it will happen, even given the tight & uncertain budget environment

Proposal Details Three year project with proposed central budget of ~ $3 million Central coordinating staff of 2 high level technical staff, a project director, communications and documentation specialists and a support person Initial activity – develop CSU-wide LDAP directory

A Vision for the Future

Consider the potential… Approximately 500,000 individuals from 24 entities (campuses + CO) Millions of alumni Community Colleges High School Students CENIC’s “One Gigabit or Bust” initiative

Resources On my web site: SIMI proposal document in PDF format These slides (later today) Contact Info